城市(city): unknown
省份(region): unknown
国家(country): Portugal
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 45.156.129.32 | attack | Malicious IP |
2024-06-11 21:03:25 |
| 45.156.129.23 | attack | hacking |
2024-02-21 16:21:38 |
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 45.154.220.0 - 45.157.167.255
CIDR: 45.154.224.0/19, 45.154.220.0/22, 45.157.160.0/21, 45.156.0.0/16, 45.157.0.0/17, 45.157.128.0/19, 45.155.0.0/16
NetName: RIPE
NetHandle: NET-45-154-220-0-1
Parent: NET45 (NET-45-0-0-0-0)
NetType: Early Registrations, Transferred to RIPE NCC
OriginAS:
Organization: RIPE Network Coordination Centre (RIPE)
RegDate: 2014-05-22
Updated: 2025-02-10
Comment: These addresses have been further assigned to users in the RIPE NCC region. Please note that the organization and point of contact details listed below are those of the RIPE NCC not the current address holder. ** You can find user contact information for the current address holder in the RIPE database at http://www.ripe.net/whois.
Ref: https://rdap.arin.net/registry/ip/45.154.220.0
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
ResourceLink: whois.ripe.net
OrgName: RIPE Network Coordination Centre
OrgId: RIPE
Address: P.O. Box 10096
City: Amsterdam
StateProv:
PostalCode: 1001EB
Country: NL
RegDate:
Updated: 2013-07-29
Ref: https://rdap.arin.net/registry/entity/RIPE
ReferralServer: whois.ripe.net
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
OrgAbuseHandle: ABUSE3850-ARIN
OrgAbuseName: Abuse Contact
OrgAbusePhone: +31205354444
OrgAbuseEmail: abuse@ripe.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE3850-ARIN
OrgTechHandle: RNO29-ARIN
OrgTechName: RIPE NCC Operations
OrgTechPhone: +31 20 535 4444
OrgTechEmail: hostmaster@ripe.net
OrgTechRef: https://rdap.arin.net/registry/entity/RNO29-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.156.129.195
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15193
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;45.156.129.195. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026031801 1800 900 604800 86400
;; Query time: 32 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 19 01:30:07 CST 2026
;; MSG SIZE rcvd: 107195.129.156.45.in-addr.arpa domain name pointer sh-chi-us-gd17-wk102d.internet-census.org.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
195.129.156.45.in-addr.arpa name = sh-chi-us-gd17-wk102d.internet-census.org.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 85.185.42.99 | attackbots | Unauthorised access (Aug 2) SRC=85.185.42.99 LEN=52 TOS=0x10 PREC=0x40 TTL=114 ID=4189 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Jul 29) SRC=85.185.42.99 LEN=52 TOS=0x10 PREC=0x40 TTL=114 ID=5956 DF TCP DPT=445 WINDOW=8192 SYN |
2020-08-03 00:55:32 |
| 114.220.238.72 | attack | B: Abusive ssh attack |
2020-08-03 00:57:56 |
| 106.52.42.153 | attackspambots | Port scan denied |
2020-08-03 01:06:36 |
| 222.186.180.142 | attackbotsspam | Aug 2 12:37:22 ny01 sshd[28442]: Failed password for root from 222.186.180.142 port 16257 ssh2 Aug 2 12:37:58 ny01 sshd[28506]: Failed password for root from 222.186.180.142 port 19579 ssh2 Aug 2 12:38:00 ny01 sshd[28506]: Failed password for root from 222.186.180.142 port 19579 ssh2 |
2020-08-03 00:52:04 |
| 104.248.29.200 | attack | wp-login.php |
2020-08-03 01:07:43 |
| 192.35.168.105 | attackbotsspam | " " |
2020-08-03 01:16:24 |
| 125.124.253.203 | attackspam | Bruteforce detected by fail2ban |
2020-08-03 00:46:49 |
| 171.233.220.168 | attack | Automatic report - Port Scan Attack |
2020-08-03 01:13:10 |
| 148.72.207.248 | attackspam | Aug 2 13:59:09 havingfunrightnow sshd[17599]: Failed password for root from 148.72.207.248 port 58334 ssh2 Aug 2 14:04:18 havingfunrightnow sshd[17819]: Failed password for root from 148.72.207.248 port 43892 ssh2 ... |
2020-08-03 01:05:37 |
| 87.246.7.6 | attackbots | (smtpauth) Failed SMTP AUTH login from 87.246.7.6 (GB/United Kingdom/6.0-255.7.246.87.in-addr.arpa): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2020-08-02 21:16:51 login authenticator failed for (Lt1Kmtv9Z) [87.246.7.6]: 535 Incorrect authentication data (set_id=hello@etehadbar.com) 2020-08-02 21:17:11 login authenticator failed for (W526tlTVZ) [87.246.7.6]: 535 Incorrect authentication data (set_id=hello@etehadbar.com) 2020-08-02 21:17:22 login authenticator failed for (LlAsgZ) [87.246.7.6]: 535 Incorrect authentication data (set_id=hello@etehadbar.com) 2020-08-02 21:17:32 login authenticator failed for (21NLYhv0) [87.246.7.6]: 535 Incorrect authentication data (set_id=hello@etehadbar.com) 2020-08-02 21:17:43 login authenticator failed for (AMOfzH5) [87.246.7.6]: 535 Incorrect authentication data (set_id=hello@etehadbar.com) |
2020-08-03 01:10:41 |
| 139.199.80.67 | attackspambots | Aug 2 12:37:23 vps-51d81928 sshd[393833]: Failed password for root from 139.199.80.67 port 46592 ssh2 Aug 2 12:38:34 vps-51d81928 sshd[393850]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.80.67 user=root Aug 2 12:38:36 vps-51d81928 sshd[393850]: Failed password for root from 139.199.80.67 port 58464 ssh2 Aug 2 12:39:50 vps-51d81928 sshd[393864]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.80.67 user=root Aug 2 12:39:52 vps-51d81928 sshd[393864]: Failed password for root from 139.199.80.67 port 42112 ssh2 ... |
2020-08-03 00:34:31 |
| 45.80.151.58 | attackbots | Aug 2 14:08:30 h2829583 sshd[6425]: Failed password for root from 45.80.151.58 port 33170 ssh2 |
2020-08-03 00:51:02 |
| 217.182.194.103 | attackspam | Aug 2 12:07:57 IngegnereFirenze sshd[31488]: User root from 217.182.194.103 not allowed because not listed in AllowUsers ... |
2020-08-03 01:03:31 |
| 139.59.169.103 | attack | Aug 2 12:50:20 Tower sshd[22774]: Connection from 139.59.169.103 port 37834 on 192.168.10.220 port 22 rdomain "" Aug 2 12:50:21 Tower sshd[22774]: Failed password for root from 139.59.169.103 port 37834 ssh2 Aug 2 12:50:21 Tower sshd[22774]: Received disconnect from 139.59.169.103 port 37834:11: Bye Bye [preauth] Aug 2 12:50:21 Tower sshd[22774]: Disconnected from authenticating user root 139.59.169.103 port 37834 [preauth] |
2020-08-03 01:10:01 |
| 170.84.221.198 | attackspam | DATE:2020-08-02 14:08:07, IP:170.84.221.198, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq) |
2020-08-03 00:55:56 |